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DETAILED ACTION 

1 . Currently pending claims are 1 - 29. 

Response to Arguments 

2. Applicant's arguments filed on 1/31/2008 have been fully considered and are 
persuasive. Therefore, the rejection has been withdrawn and, upon further consideration, a 
new ground of rejection has been made - see the following Office action. 

Claim Rejections - 35 USC § 102 

(e) the invention was described in (1 ) an application for patent, published under section 1 22(b), by 
another filed in the United States before the invention by the applicant for patent or (2) a patent 
granted on an application for patent by another filed in the United States before the invention by the 
applicant for patent, except that an international application filed under the treaty defined in section 
351(a) shall have the effects for purposes of this subsection of an application filed in the United States 
only if the international application designated the United States and was published under Article 21(2) 
of such treaty in the English language. 

3. Claims 1 - 4, 6 - 9, 1 1 - 1 6, 1 8 - 21 , 23 - 27 and 29 are rejected under 35 
U.S.C. 102(e) as being anticipated by Ott et al. (U.S. Patent 2004/0049698). 

As per claim 1,13 and 25, Ott teaches a system comprising: 

an appliance-internal unit to detect a current security status of an appliance (Ott: Para 
[0043] and Para [0020] Line 1-15); 

an external display to display the current security status of the appliance directly on the 
outside of the appliance (Ott: Para [0043]); 
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an internal display to display the current security status of the appliance within the inside 
of the appliance (Ott: Para [0043] and Para [0020] Line 5 - 1 1 : the internal event data log 
qualified as an internal display - This is also consistent with the specification of the instant 
application specification that states "the internal display" may be a simple mechanism such as 
the setting of a flag (SPEC: Para [0024] last two sentences)); and 

a transmission unit to transmit security status data between other appliances in a 
network of appliances such that the current security status data can be subjected to data 
processing in the network of appliances (Ott: Para [0020] / [0043]). 

As per claim 2 and 14, Ott teaches the appliances are automation appliances (Ott: Para 
[0020]). 

As per claim 3, 15 and 26, Ott teaches the external display visually displays the security 
status (Ott: Para [0043]: the security status is displayed in real-time to an operator). 

As per claim 4, 16 and 27, Ott teaches an access unit to run automation user programs on 
the internal display (Ott: Para [0043] and Para [0020] Line 5 - 1 1: the internal event data log 
qualified as an internal display - This is also consistent with the specification of the instant 
application specification that states "the internal display" may be a simple mechanism such as 
the setting of a flag (SPEC: Para [0024] last two sentences)) 
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As per claim 6 and 18, Ott teaches a joint display to display an overall security status of 
a plurality of appliances, respectively having their internal displays linked (Ott: Para [0028] last 
sentence & Para [0029] Line 10-15: collaborative fusion display is a joint display). 

As per claim 7 and 1 9, Ott teaches the joint display is an external visual display (Ott: Para 
[0043]: the security status is displayed in real-time to an operator). 

As per claim 8 and 20, Ott teaches there are a plurality of joint displays, each displaying 
the status of a different plurality of appliances (Ott: Para [0028] last sentence & Para [0029] Line 
10-15 and Para [0043]), and the overall security status is passed on from the joint display to a 
higher-level joint display that displays an overall security status of the appliances 
communicating with the joint displays (Ott: Para [0042] and Para [0029] last sentence: (a) using 
local security zone manager and (b) collaborative agents (or fusion agents) can be configured 
for distribution from one security server to another security server - i.e. hierarchically linked). 

As per claim 9 and 21, Ott teaches there are a plurality of joint displays, each displaying 
the status of a different plurality of appliances (Ott: Para [0042] and Para [0029] last sentence: 
(a) using local security zone manager and (b) collaborative agents (or fusion agents) can be 
configured for distribution from one security server to another security server - i.e. hierarchically 
linked). 

As per claim 1 1 and 23, Ott teaches a portion of the appliances have internal security 
mechanisms, a portion of the appliances are without internal security mechanisms, and the 
system integrates appliances without internal security mechanisms with appliances that have 
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internal security mechanisms (Ott: Para [0028] Line 10-18 and Para [0041] last sentence & 
Figure 4: (a) each fusion agent is specialized in a potential network security issue - i.e. a portion 
of the appliances have a specific internal security mechanisms, a portion of the appliances are 
without those specific internal security mechanisms and (b) receiving security data directly from 
a keyboard instead of a communication port is considered as a method that merely dumps 
system events to an administrator to sort through and make sense of the data without internal 
intelligent security mechanism). 

As per claim 12 and 24, Ott teaches the transmission unit transmits current security 
status via an Intranet and/or the Internet (Ott: Para [0016]). 

As per claim 29, Ott teaches the internal display functions as an input for other devices 
within the appliance (Ott: Para [0023] Line 10-15). 

Claim Rejections - 35 USC §103 

The following is a quotation of 35 U.S.C. 1 03(a) which forms the basis for all obviousness 
rejections set forth in this Office action: 

A person shall be entitled to a patent unless - 

(a) A patent may not be obtained though the invention is not identically disclosed or described as set forth in section 102 
of this title, if the differences between the subject matter sought to be patented and the prior art are such that the subject 
matter as a whole would have been obvious at the time the invention was made to a person having ordinary skill in the art 
to which said subject matter pertains. Patentability shall not be negatived by the manner in which the invention was 
made. 

4. Claims 5, 17 and 28 are rejected under 35 U.S.C. 103(a) as being unpatentable over Ott 
et al. (U.S. Patent 2004/0049698), in view of Grainger (U.S. Patent 6,910,135). 
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As per claim 5, 17 and 28, Ott does not disclose expressly an internal-information base 
to provide access to the security status from the network of appliances via standard protocols. 

Grainger teaches an internal-information base to provide access to the security status 
from the network of appliances via standard protocols (Grainger: Column 3 Line 18 - 23 / Line 
32 - 36: SNMP / MIB (Management Information base) is used by an event correlation engine as 
a common information base and standard protocol for managing network events such as 
security status). 

Accordingly, Ott in view of Grainger teaches an internal-information base to provide 
access to the security status from the network of appliances via standard protocols, access to 
the current security status being provided by the internal display (See the reasons set forth 
above). 

It would have been obvious to a person of ordinary skill in the art at the time the 
invention was made to combine the teaching of Grainger within the system of Ott because (a) 
Ott teaches detecting and presenting the network security and intrusion information relating to 
a series of security violations to a user by collecting the event logs through the sensor agents 
that communicate event data logs back to thhe respective security server for analysis and 
processing (Ott: Para [0020]) and (b) Grainger teaches providing an effective use of SNMP / 
MIB (Management Information base) by an event correlation engine as a common information 
base and standard protocol for managing network events such as security status (Grainger: 
Column 3 Line 18 - 23 / Line 32 - 36). 

5. Claims 10 and 22 are rejected under 35 U.S.C. 103(a) as being unpatentable over Ott 
et al. (U.S. Patent 2004/0049698), in view of Douglas (U.S. Patent 2004/0049693). 
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As per claim 10 and 22, Ott does not disclose expressly the security status of the 
internal display can be simulated such that the internal display is active even without the 
appliance-internal unit detecting the current security status. 

Douglas teaches the security status of the internal display can be simulated such that 
the internal display is active even without the appliance-internal unit detecting the security status 
(Douglas : Para [0089]: for debugging and testing purpose - This also appears in the application 
specification). 

It would have been obvious to a person of ordinary skill in the art at the time the 
invention was made to combine the teaching of Douglas within the system of Ott because (a) 
Ott teaches detecting and presenting the network security and intrusion information relating to 
a series of security violations to a user by collecting the event logs through the sensor agents 
that communicate event data logs back to thhe respective security server for analysis and 
processing (Ott: Para [0020]) and (b) Douglas teaches host-based intrusion detection system 
(HIDS) that monitors, simulates, tests and debugs the system logs for evidence of malicious or 
suspicious application activity and detects attacks targeted at the host system on which it is 
installed and monitors output to the system and audit logs (Douglas : Abstract and Para 
[0089]). 

Any inquiry concerning this communication or earlier communications from the examiner 
should be directed to Longbit Chai whose telephone number is 571-272-3788. The examiner 
can normally be reached on Monday-Friday 9:00am-5:00pm. 

If attempts to reach the examiner by telephone are unsuccessful, the examiner's 
supervisor, Ayaz R. Sheikh can be reached on 571-272-3795. The fax phone number for the 
organization where this application or proceeding is assigned is 571-273-8300. 
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Information regarding the status of an application may be obtained from the Patent 
Application Information Retrieval (PAIR) system. Status information for published applications 
may be obtained from either Private PAIR or Public PAIR. Status information for unpublished 
applications is available through Private PAIR only. For more information about the PAIR 
system, see http://pair-direct.uspto.gov. Should you have questions on access to the Private 
PAIR system, contact the Electronic Business Center (EBC) at 866-217-9197 (toll-free). If you 
would like assistance from a USPTO Customer Service Representative or access to the 
automated information system, call 800-786-9199 (IN USA OR CANADA) or 571-272-1000. 

/Longbit Chai/ 

Primary Examiner, Art Unit 2131 

Longbit Chai Ph.D. 
Patent Examiner 
Art Unit 2131 
2/20/2008 



